Device authentication to facilitate secure cloud management of industrial data
First Claim
1. A system, comprising:
- a memory that stores computer-executable components;
a processor, operatively coupled to the memory, that executes the computer-executable components, the computer-executable components comprising;
an authentication component configured to;
receive, over a wide area network, an authentication request from a cloud agent device operating on a local area network in communication with a plurality of industrial devices associated with an industrial process in a facility;
in response to the authentication request, generate an access key that authenticates the cloud agent device with a cloud platform for a defined period of time, wherein the access key uniquely identifies the cloud agent device for the facility; and
transmit the access key to the cloud agent device; and
a cloud data processing component configured to;
receive, at the cloud platform, one or more data packets from the cloud agent device during the defined period of time;
assign respective industrial data contained in the one or more data packets to priority queues in the cloud platform based on respective header data included with the one or more data packets, wherein the respective priority queues have different priority levels for data processing;
select a manifest assembly from a set of manifest assemblies based on header data associated with a data packet of the one or more data packets; and
process industrial data from the data packet in a priority queue to which the industrial data has been assigned in accordance with the manifest assembly.
1 Assignment
0 Petitions
Accused Products
Abstract
Authentication of cloud agents that collect and/or process industrial data facilitates secure communications with a cloud platform. An authentication component receives an authentication request from a cloud agent device residing at an industrial facility. The authentication component also authenticate the cloud agent device in response to the authentication request for a defined period of time based on an access key that uniquely identifies the cloud agent device residing at the industrial facility. A cloud data processing component receives, at a cloud platform, one or more data packets from the cloud agent device during the defined period of time and processes industrial data contained in the one or more data packets according processing instructions associated with the cloud platform.
73 Citations
20 Claims
-
1. A system, comprising:
-
a memory that stores computer-executable components; a processor, operatively coupled to the memory, that executes the computer-executable components, the computer-executable components comprising; an authentication component configured to; receive, over a wide area network, an authentication request from a cloud agent device operating on a local area network in communication with a plurality of industrial devices associated with an industrial process in a facility; in response to the authentication request, generate an access key that authenticates the cloud agent device with a cloud platform for a defined period of time, wherein the access key uniquely identifies the cloud agent device for the facility; and transmit the access key to the cloud agent device; and a cloud data processing component configured to; receive, at the cloud platform, one or more data packets from the cloud agent device during the defined period of time; assign respective industrial data contained in the one or more data packets to priority queues in the cloud platform based on respective header data included with the one or more data packets, wherein the respective priority queues have different priority levels for data processing; select a manifest assembly from a set of manifest assemblies based on header data associated with a data packet of the one or more data packets; and process industrial data from the data packet in a priority queue to which the industrial data has been assigned in accordance with the manifest assembly. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method, comprising:
-
receiving over a wide area network, by a system comprising at least one processor, an authentication request from a cloud agent device operating on a local area network in communication with a plurality of industrial devices associated with an industrial process in a facility; in response to the authentication request, generating, by the system, an access key that authenticates the cloud agent device with a cloud platform for a defined interval of time, wherein the access key uniquely identifies the cloud agent device for the facility; transmitting, by the system, the access key to the cloud agent device; receiving, by the system, a data packet comprising industrial data from the cloud agent device during the defined interval of time; assigning, by the system, the industrial data to a priority queue of a plurality of priority queues on the cloud platform, wherein the priority queue is selected based on header data included with the data packet, and respective priority queues of the plurality of priority queues have different priority levels for data processing; selecting, by the system, a manifest assembly from a set of manifest assemblies based on the header data; and processing, by the system, the industrial data from the data packet in the priority queue in accordance with the manifest assembly. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
-
18. A non-transitory computer-readable medium having stored thereon instructions that, in response to execution, cause a system comprising a processor to perform operations, the operations comprising:
-
receiving, over a wide area network at a cloud platform, an authentication request from a cloud agent device operating on a local area network in communication with a plurality of industrial devices associated with an industrial process in a facility, wherein the authentication request requests authentication of the cloud agent device with the cloud platform; in response to the authentication request, generating, by the system, an access key that authenticates the cloud agent device with a cloud platform for a defined time period, wherein the access key uniquely identifies the cloud agent device with the facility; transmitting the access key to the cloud agent device; receiving one or more data packets from the cloud agent device during the defined time period; assigning respective industrial data contained in the one or more data packets to priority queues in the cloud platform based on respective header data included with the one or more data packets, wherein the respective priority queues have different priority levels for data processing; selecting a manifest assembly from a set of manifest assemblies based on header data associated with a data packet of the one or more data packets; and processing, by the system, industrial data from the data packet in a priority queue to which the industrial data has been assigned in accordance with the manifest assembly. - View Dependent Claims (19, 20)
-
Specification